Trend Micro Deep Discovery Analyzer 1200
Enhanced protection against targeted attacks
Deep Discovery Analyzer 1200
Get a Quote!
Targeted attacks and advanced threats are customized to evade your conventional security defenses and remain hidden, while stealing your sensitive data or encrypting critical data until ransom demands are met. To detect targeted attacks and advanced threats, analysts and security experts agree that organizations should utilize advanced detection technology as part of an expanded strategy to address today’s evasive threats.
Deep Discovery Analyzer extends the value of existing security investments from Trend Micro and third parties (through a web services API) by providing custom sandboxing and advanced analysis. It can also provide expanded sandboxing capabilities to other Trend Micro products. Suspicious objects can be sent to the Analyzer sandbox for advanced analysis using multiple detection methods. If a threat is discovered, security solutions can be updated automatically.
- Superior detection versus generic virtual environments.
- Superior evasion resistance.
- Enhance existing investments through integration and sharing of threat. intelligence and additional processing capacity for high traffic environments.
- Remove time consuming manual analysis of suspicious files.
- Protect against expensive ransomware remediation.
- Flexible deployment options for centralized or decentralized analysis.
Custom sandboxes use virtual images to match your operating system applications, configurations, and patches. Difficult for hackers to evade, they include a “safe live mode” to analyze multi-stage downloads, URLs, C&C, and more. Sandboxing can be used as further sandboxing capacity for other Deep Discovery appliances or as a scalable stand-alone sandbox. Manual submission allows administrators to investigate suspicious objects.
See More and Respond Faster
Built-in security operations capabilities like XDR, risk insights, and more give you visibility and continuous risk assessment across the enterprise. Manage cyber risk better while being more agile.
Centralized Visibility and Investigation
Deep Discovery Analyzer is managed with a centralized management platform, Trend Micro Apex Central, which provides a holistic view of your security posture across all Trend Micro security solutions and shares threat updates with your existing security platforms. Deep Discovery offers custom image management and control across multiple Deep Discovery systems.
Prevent Data Breaches
Deep Discovery Analyzer is a turnkey appliance that uses virtual images of endpoint configurations to analyze and detect targeted attacks. By applying a blend of cross-generational detection techniques at the right place and time, it detects targeted attacks designed to evade standard security solutions.
Detect Targeted Ransomware
Organizations are increasingly becoming victims of targeted ransomware when advanced malware bypasses traditional security, encrypts data, and demands payment to release the data. Deep Discovery Inspector uses known and unknown patterns and reputation analysis to detect the latest ransomware attacks, including WannaCry. The customized sandbox detects mass file modifications, encryption behavior, and modifications to backup and restore processes.
Extend the value of your security
Many organizations have invested lots of money to deploy security solutions such as next-gen firewalls, IPS, endpoint security, and security gateways. Unfortunately, targeted attacks are designed to bypass these solutions. Deep Discovery Analyzer bridges solutions that provide security for known threats with protection from unknown threats and shares threat information back to these solutions.
The appliance extends the value of existing security and speeds up the time to detect and remediate targeted attacks. Incident response time is reduced and costs of remediation are lowered.
Custom Sandbox Analysis
Custom Sandbox Analysis uses virtual images that are tuned to precisely match your system configurations, drivers, installed applications, and language versions. This approach improves the detection rate of advanced threats that are designed to evade standard virtual images. The custom sandbox environment includes safe external access to identify and analyze multi-stage downloads, URLs, command and control (C&C), and more, as well as supporting manual or automated file and URL submission.
Flexible Deployment Analyzer can be deployed as a standalone sandbox or alongside a larger Deep Discovery deployment to add additional sandbox capacity. It is scalable to support up to 60 sandboxes in a single appliance, and multiple appliances can be clustered for high availability or configured for a hot or cold backup.
Advanced Detection Methods
Advanced Detection Methods such as static analysis, heuristic analysis, behavior analysis, web reputation, and file reputation ensure threats are discovered quickly. Analyzer also detects multi-stage malicious files, outbound connections, and repeated C&C from suspicious files.
- Broad file analysis range examines a wide range of Windows executables, Microsoft® Office, PDF, web content, and compressed file types using multiple detection engines and sandboxing. Custom policies can be defined by file type.
- Document exploit detection discovers malware and exploits delivered in common document formats by using specialized detection and sandboxing.
- URL analysis Performs sandbox analysis of URLs contained in emails or manually submitted samples.
- Web services API and manual submission enables any product or malware analyst to submit suspicious samples. Shares new indicators of compromise (IoC) detection intelligence automatically with Trend Micro and third-party products.
- Support for Windows, Mac, and Android operating systems.
Detect ransomware detects script emulation, zero-day exploits, targeted and password-protected malware commonly associated with ransomware. IT also uses information on known threats to discover ransomware through pattern and reputationbased analysis. The custom sandbox can detect mass file modifications, encryption behavior, and modifications to backup and restore.
|Deep Discovery Analyzer 1200 Specifications|
|Supported File Types||alz, bat, cmd, cell, chm, csv, class, dll, doc, docx, egg, elf, exe, gul, hta, html, hwp, hwpx, igy jar, js, jse, jtd, lnk, mht, mhtml, mov, odt, odp, ods, pdf, ppt, pptx, ps1, pub, rtf, sh, slk, svg, swf, vbe, vbs, , wsf, xls, xlsx, xml, xht, xhtml, url|
|Supported Operating Systems||Windows XP, Win7, Win8/8.1, Win 10, Windows Server 2003, 2008, 2012, 2016 Mac OS, Linux|
|Form Factor||2U rack-mount, 48.26 cm (19”)|
|Weight||31.5 kg (69.45 lbs)|
|Dimensions (WxDxH)||48.2 cm (18.98”) x 75.58 cm (29.75”) x 8.73 cm (3.44”)|
|Management Ports||10/100/1000 base-T RJ45 port x 1 – optional 10G SR SFP+|
|Data Ports||10/100/1000 base-T RJ45 x 3 – optional 10G SR SFP+|
|AC Input Voltage||100 to 240 VAC|
|AC Input Current||10A to 5A|
|Hard Drives||2 x 4 TB 3.5 inch SATA|
|RAID Configuration||RAID 1|
|Power Supply||750W redundant|
|Power Consumption (Max.)||847W (max.)|
|Heat||2891 BTU/hr. (max.)|
|Operating Temperature||50-95 °F (10 to 35 °C)|
|Hardware Warranty||3 Years|